Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
File: zRQ2kCMKRApot6iqmCefL2Xf7ig.mft (raw, json)
Hash identifier: jgBj/VCnXaDuTmlxcHyrlF22DcyiUo85v++aa1yaqpQ=
Subject key identifier: 4B:92:DC:D4:75:FC:13:96:B9:0D:3A:82:56:9F:B5:A0:76:94:AC:2C
Authority key identifier: CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28
Certificate issuer: /CN=cd143690230a440a68b7a8aa98279f2f65dfee28
Certificate serial: 01974A7B46B3B77ECA4018CAE09AB337C9EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
Manifest number: 127F
Signing time: Sat 07 Jun 2025 13:01:22 +0000
Manifest this update: Sat 07 Jun 2025 13:01:22 +0000
Manifest next update: Sun 08 Jun 2025 13:01:22 +0000
Files and hashes: 1: vHQRV0jRUXExLLAYBdY2ODpzWoo.roa (hash: 7UhAMCr3OjHllJdnfdmjdJInrKVauXU3M4e5nn0fWuA=)
2: zRQ2kCMKRApot6iqmCefL2Xf7ig.crl (hash: 1jjHizNT1UrX+qrZNXbhsscIQmi2/Rj6o9ER60oegHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:46:b3:b7:7e:ca:40:18:ca:e0:9a:b3:37:c9:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd143690230a440a68b7a8aa98279f2f65dfee28
Validity
Not Before: Jun 7 13:01:22 2025 GMT
Not After : Jun 8 13:01:22 2025 GMT
Subject: CN=4b92dcd475fc1396b90d3a82569fb5a07694ac2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:62:91:4e:5e:96:95:48:9f:50:49:e9:cd:da:
ed:f8:47:b5:d2:4a:0d:47:95:10:b5:95:0e:5a:f0:
39:90:f0:cb:3b:1f:51:8c:0d:8c:73:2e:a1:97:b9:
01:55:79:02:67:11:4f:2d:30:07:23:61:95:0b:8e:
1d:e0:c4:e8:71:9c:56:e4:a1:08:27:4d:ad:67:50:
60:23:f8:cd:f8:1c:d4:b0:72:a1:78:fc:36:af:44:
f4:22:4d:68:5a:06:6d:05:b7:73:08:a6:b2:26:ea:
09:54:19:6a:77:2a:5d:7b:25:f0:1c:22:3c:8f:66:
92:54:ff:c2:b1:df:57:b3:ed:e5:63:41:79:d8:3f:
64:72:b4:fb:77:4d:5f:fe:3a:99:aa:f4:78:b1:4f:
fb:5a:bd:ff:08:d2:20:26:cf:69:5b:b3:d9:c7:24:
39:8e:ce:20:de:c3:ef:98:72:03:e5:ae:a0:4c:90:
cc:4e:1d:4b:74:8a:3e:67:8b:2d:40:40:bc:59:aa:
86:72:f9:3e:89:10:87:cd:54:90:a3:bc:85:68:9e:
44:cb:22:4e:14:3e:6b:58:9e:ca:33:38:d5:76:76:
09:1f:88:1d:e3:c1:c3:1e:8d:50:b2:fb:f3:38:19:
df:6c:60:27:ab:b9:c7:9a:c8:88:04:79:99:4f:8a:
2a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:92:DC:D4:75:FC:13:96:B9:0D:3A:82:56:9F:B5:A0:76:94:AC:2C
X509v3 Authority Key Identifier:
keyid:CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:b4:64:8b:4b:04:81:a5:24:03:b7:cf:c9:f5:3e:8d:fb:3d:
18:b8:11:08:16:43:fb:12:fb:4c:19:6b:cc:59:81:1e:ff:43:
70:2a:29:4d:c4:70:45:bc:f2:df:76:54:c0:a1:90:fa:4b:f7:
98:24:d5:b3:f4:95:4f:52:01:02:46:6d:d6:29:dd:94:5c:3f:
40:21:62:43:e1:7c:94:3f:cf:4d:2e:a6:44:ef:80:6b:da:b1:
0d:43:12:b6:87:7e:34:27:2a:a0:22:cf:83:0b:2a:6d:a6:88:
86:4a:55:35:05:10:be:45:b3:56:69:d3:79:29:96:cd:72:3b:
2d:51:f2:b2:3e:7c:1a:b3:16:e2:0b:c7:19:e3:cb:f9:af:16:
26:ae:49:5f:21:1f:5e:24:0f:12:b0:b7:5b:73:73:cd:3b:98:
a2:8f:ea:b5:6e:9b:93:e3:8f:c2:56:7b:3b:cd:47:46:95:b0:
bf:cf:69:29:bc:59:d3:3b:4d:76:43:28:18:63:20:71:11:d7:
da:f4:e1:34:20:ca:c6:6a:b0:d1:6e:55:29:a9:65:b4:63:b9:
82:7d:9a:1a:4e:be:bf:fa:b9:19:ee:af:30:5b:25:a8:04:91:
b8:fd:fd:2b:06:fc:a9:95:4d:ca:3b:bf:fa:0f:c9:83:a4:a5:
b1:e2:e2:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:33:29 2025 by rpki-client